Subscribe

U.S. Warns Of Lazarus hackers Using Malicious Crypto Apps

April 20, 2022

A joint report by CISA, the FBI and the U.S. Treasury Department has warned organizations in the crypto and blockchain industry about a new threat posed by the North Korean hacking group Lazarus.

Security agencies found that hackers using trojanized cryptocurrency applications are targeting organizations in these industries.

To carry out the attack, the hackers use social engineering to trick employees of cryptocurrency companies into downloading and running malicious Windows and macOS cryptocurrency apps.

The trojanized tools are then used to carry out various malicious activities, including accessing the target’s computers, spreading malware on their networks, and stealing private keys that allow fraudulent blockchain transactions to be initiated.

Users are tricked into downloading the TraderTraitor Trojan applications. This is an electronic-based, cross-platform utility developed with JavaScript and the Node.js runtime environment.

TraderTraitor cryptocurrency apps used in these campaigns include DAFOM, TokenAIS, CryptoAIS, AlticGO, Esilet and CreAI Deck.

The Sources for this piece include an article in BleepingComputer.

Top Stories

OpenAI launches new deployment company to help businesses operationalize AI systems

Canvas restores service after cyberattack disrupted schools and universities

Google, Microsoft and xAI agree to share AI models with U.S. government before public release

Anthropic expands Claude with “infinite” context windows and multi-agent AI workflows

Shopify cuts operations staff amid AI-driven restructuring

Canadian musician sues Google after AI Overview falsely identified him as sex offender

Related Articles

Canvas restores service after cyberattack disrupted schools and universities

May 11, 2026 Instructure has restored access to its Canvas learning platform after a cyberattack disrupted service for universities and more...

Security researcher finds extensive tracking and security concerns inside White House mobile app

May 6, 2026 The official White House mobile app for iOS and Android is facing scrutiny after a security researcher more...

Microsoft Defender flags DigiCert root certificates as malware in false positive 

May 4, 2026 Microsoft Defender mistakenly detected legitimate DigiCert root certificates as malware, triggering widespread false-positive alerts and, in some more...

70,000 customers may be affected in Canada Life cyber incident

April 27, 2026 Canada Life says it has contained a cybersecurity incident involving unauthorized access to internal applications through an more...

Picture of TND Newsdesk

TND Newsdesk

Picture of TND Newsdesk

TND Newsdesk

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn